gdc-sdk-node-ts 0.9.1 → 2.0.2

package/dist/individual-controller-backend-runtime.js

@@ -0,0 +1,53 @@
+// Copyright 2026 Antifraud Services Inc. under the Apache License, Version 2.0.
+import { loadBackendIndividualControllerProfile, } from './backend-profile-runtime.js';
+/**
+ * Backend use-case facade for the current individual-controller baseline.
+ *
+ * This class does not redefine the generic backend profile runtime. It wraps
+ * that runtime with the current stable CORE-facing actions that backend
+ * consumers need first:
+ *
+ * - load an individual-controller profile
+ * - start individual registration/bootstrap
+ * - confirm the returned order/offer
+ * - search the subject clinical index
+ * - request the latest IPS-oriented bundle
+ */
+export class IndividualControllerBackendRuntime {
+    constructor(profileRuntime) {
+        this.profileRuntime = profileRuntime;
+    }
+    /**
+     * Loads one individual-controller backend profile and materializes its actor
+     * facade in one step.
+     */
+    loadProfile(input) {
+        return loadBackendIndividualControllerProfile(this.profileRuntime, input);
+    }
+    /**
+     * Starts the current CORE individual/family bootstrap flow.
+     */
+    startIndividualOrganization(profile, input) {
+        return profile.sdk.startIndividualOrganization(input);
+    }
+    /**
+     * Confirms the order returned by the individual bootstrap flow.
+     */
+    confirmIndividualOrganizationOrder(profile, input) {
+        return profile.sdk.confirmIndividualOrganizationOrder(input);
+    }
+    /**
+     * Searches the current subject clinical bundle index through the loaded
+     * individual-controller facade.
+     */
+    searchClinicalBundle(profile, ctx, input) {
+        return profile.sdk.searchClinicalBundle(ctx, input);
+    }
+    /**
+     * Reads the latest IPS-oriented bundle through the loaded
+     * individual-controller facade.
+     */
+    getLatestIps(profile, ctx, input) {
+        return profile.sdk.getLatestIps(ctx, input);
+    }
+}

package/dist/individual-onboarding.d.ts

@@ -17,6 +17,7 @@ export type IndividualOrganizationConfirmOrderInput = {
     jurisdiction?: string;
     sector?: string;
     offerId: string;
+    additionalClaims?: Record<string, unknown>;
     timeoutSeconds?: number;
     intervalSeconds?: number;
 };

package/dist/individual-onboarding.js

@@ -8,6 +8,7 @@ export async function confirmIndividualOrganizationOrderWithDeps(deps) {
     const orderClaims = {
         '@context': 'org.schema',
         'Order.acceptedOffer.identifier': offerId,
+        ...(deps.input.additionalClaims || {}),
     };
     const payload = {
         jti: `jti-${createRuntimeUuid()}`,

package/dist/individual-start.d.ts

@@ -1,5 +1,6 @@
 import type { PollOptions, SubmitAndPollResult } from './orchestration/client-port.js';
 import type { RouteContext } from './individual-onboarding.js';
+import type { OfferPreview } from './order-offer-summary.js';
 export type IndividualOrganizationBootstrapInput = {
     /**
      * Preferred route identifier for the selected personal indexing service provider.
@@ -54,16 +55,6 @@ export type IndividualOrganizationBootstrapInput = {
     timeoutSeconds?: number;
     intervalSeconds?: number;
 };
-export type OfferPreview = {
-    offerId?: string;
-    amount?: string;
-    currency?: string;
-    seats?: number | undefined;
-    planName?: string;
-    sku?: string;
-    paymentMethod?: string;
-    checkoutUrl?: string;
-};
 export type IndividualOrganizationStartResult = {
     registration: SubmitAndPollResult;
     offerId: string;

package/dist/legacy-compat.d.ts

@@ -1,6 +1,7 @@
 export { activateEmployeeDeviceWithActivationRequestWithDeps as activateEmployeeDeviceWithActivationCodeSimpleWithDeps, } from './device-activation.js';
 export { confirmLegalOrganizationOrderWithDeps as confirmLegalOrganizationOrderSimpleWithDeps, } from './host-onboarding.js';
 export { confirmIndividualOrganizationOrderWithDeps as confirmIndividualOrganizationOrderSimpleWithDeps, } from './individual-onboarding.js';
+export { confirmOrganizationLicenseOrderWithDeps as confirmOrganizationLicenseOrderSimpleWithDeps, } from './organization-license-order.js';
 export { requestSmartTokenWithDeps as requestSmartTokenSimpleWithDeps, } from './smart-token.js';
 export { startIndividualOrganizationWithDeps as startIndividualOrganizationSimpleWithDeps, } from './individual-start.js';
 export { grantProfessionalAccessWithDeps as grantProfessionalAccessSimpleWithDeps } from './resource-operations.js';
@@ -8,6 +9,7 @@ export { resolvePollOptionsFromSeconds as resolveSimplePollOptions } from './pol
 export type { EmployeeDeviceActivationRequestInput as EmployeeDeviceActivationSimpleInput, } from './device-activation.js';
 export type { LegalOrganizationOrderInput as LegalOrganizationOrderSimpleInput, } from './host-onboarding.js';
 export type { IndividualOrganizationConfirmOrderInput as IndividualOrganizationConfirmOrderSimpleInput, } from './individual-onboarding.js';
+export type { OrganizationLicenseOrderConfirmInput as OrganizationLicenseOrderConfirmSimpleInput, } from './organization-license-order.js';
 export type { IndividualOrganizationBootstrapInput as IndividualOrganizationBootstrapSimpleInput, IndividualOrganizationStartResult as IndividualOrganizationStartSimpleResult, } from './individual-start.js';
 export type { SmartTokenRequestInput as SmartTokenRequestSimpleInput, } from './smart-token.js';
 export type { GrantProfessionalAccessInput as GrantProfessionalAccessSimpleInput, GrantProfessionalAccessResult as GrantProfessionalAccessSimpleResult, } from './resource-operations.js';

package/dist/legacy-compat.js

@@ -3,6 +3,7 @@
 export { activateEmployeeDeviceWithActivationRequestWithDeps as activateEmployeeDeviceWithActivationCodeSimpleWithDeps, } from './device-activation.js';
 export { confirmLegalOrganizationOrderWithDeps as confirmLegalOrganizationOrderSimpleWithDeps, } from './host-onboarding.js';
 export { confirmIndividualOrganizationOrderWithDeps as confirmIndividualOrganizationOrderSimpleWithDeps, } from './individual-onboarding.js';
+export { confirmOrganizationLicenseOrderWithDeps as confirmOrganizationLicenseOrderSimpleWithDeps, } from './organization-license-order.js';
 export { requestSmartTokenWithDeps as requestSmartTokenSimpleWithDeps, } from './smart-token.js';
 export { startIndividualOrganizationWithDeps as startIndividualOrganizationSimpleWithDeps, } from './individual-start.js';
 export { grantProfessionalAccessWithDeps as grantProfessionalAccessSimpleWithDeps } from './resource-operations.js';

package/dist/node-runtime-client.d.ts

@@ -1,11 +1,13 @@
+import type { OrganizationDidBindingInput } from 'gdc-sdk-core-ts';
 import type { AppInfo } from 'gdc-sdk-core-ts';
 import { type ResolvedAppInfo } from 'gdc-sdk-core-ts';
-import { type HostRouteContext } from './host-onboarding.js';
-import type { NodeOrganizationActivationInput } from './orchestration/client-port.js';
+import { type HostRouteContext, type HostedTenantLifecycleInput } from './host-onboarding.js';
+import type { NodeLegalOrganizationVerificationTransactionInput, NodeOrganizationDidBindingInput, NodeOrganizationActivationInput } from './orchestration/client-port.js';
 import { type IndividualOrganizationConfirmOrderInput, type RouteContext } from './individual-onboarding.js';
 import { type SmartTokenRequestInput } from './smart-token.js';
+import { type OrganizationLicenseOrderConfirmInput } from './organization-license-order.js';
 import { type IndividualOrganizationBootstrapInput, type IndividualOrganizationStartResult } from './individual-start.js';
-import { type CommunicationIngestionInput, type ClinicalBundleSearchInput, type GrantProfessionalAccessInput, type GrantProfessionalAccessResult, type IndividualMemberLifecycleInput, type IndividualOrganizationLifecycleInput, type OrganizationEmployeeCreationInput, type OrganizationEmployeeLifecycleInput, type OrganizationEmployeeSearchInput, type RelatedPersonUpsertInput } from './resource-operations.js';
+import { type CommunicationIngestionInput, type CommunicationParticipantRuntimeSearchInput, type ClinicalBundleSearchInput, type GrantProfessionalAccessInput, type GrantProfessionalAccessResult, type IndividualMemberLifecycleInput, type IndividualOrganizationLifecycleInput, type LicenseListRuntimeSearchInput, type LicenseOfferRuntimeSearchInput, type LicenseOrderRuntimeSearchInput, type OrganizationEmployeeCreationInput, type OrganizationEmployeeLifecycleInput, type OrganizationEmployeeSearchInput, type RelatedPersonUpsertInput } from './resource-operations.js';
 import type { LegalOrganizationOrderInput } from './host-onboarding.js';
 import type { SmartTokenExchangeResult } from './smart-token.js';
 import type { NodeRuntimeClient, PollOptions, PollResult, SubmitAndPollResult, SubmitPayload, SubmitResponse } from './orchestration/client-port.js';
@@ -108,15 +110,70 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
      * Convenience wrapper that performs submit and poll in sequence.
      */
     submitAndPoll(submitPath: string, pollPath: string, payload: SubmitPayload, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Starts the host-side legal-organization verification transaction that GW
+     * CORE forwards to ICA `_verify`.
+     *
+     * Runtime ownership:
+     * - builds the canonical shared business bundle from `sdk-core/common-utils`
+     * - keeps communication/runtime transport concerns at the outer message layer
+     * - keeps the controller business key inside the submitted bundle payload
+     *
+     * Flow separation:
+     * - `_transaction` is the first host onboarding step
+     * - `_activate` remains a later step that consumes the ICA proof
+     */
+    submitLegalOrganizationVerificationTransaction(hostCtx: HostRouteContext, input: NodeLegalOrganizationVerificationTransactionInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Submits one tenant-scoped DID document binding request.
+     *
+     * Binding semantics:
+     * - the tenant path identifies the existing organization
+     * - `organization.url` carries the public alias/domain list
+     * - `controller.sameAs` is optional corroborating identity material
+     * - the flow does not rotate or replace organization public keys
+     */
+    submitOrganizationDidBinding(ctx: RouteContext, input: NodeOrganizationDidBindingInput | OrganizationDidBindingInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
     /**
      * Activates a legal organization in the gateway host registry using an ICA
      * proof token already obtained by the caller.
+     *
+     * Plaintext transport note:
+     * - this Node runtime currently submits `_activate` as
+     *   `application/didcomm-plaintext+json`
+     * - because there is no real outer JWS/JWE envelope in that mode, the
+     *   runtime mirrors the technical communication metadata derived from
+     *   `controller.publicKeyJwk` / `controller.jwks` into `meta.jws.protected`
+     *   and `meta.jwe.header`
+     * - secure JOSE transports should carry those values in the real protected
+     *   headers instead of plaintext `meta`
+     * - this mirrored metadata is transport fallback only; the canonical
+     *   activation contract remains `body.vp_token` plus `body.controller.*`
      */
     activateOrganizationInGatewayFromIcaProof(hostCtx: HostRouteContext, input: NodeOrganizationActivationInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
     /**
      * Confirms a host-side legal organization order after the initial activation.
      */
     confirmLegalOrganizationOrder(hostCtx: HostRouteContext, input: LegalOrganizationOrderInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Disables the host registration itself after every hosted tenant has
+     * already been purged from the host registry.
+     */
+    disableHost(hostCtx: HostRouteContext, input: HostedTenantLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Purges the disabled host registration after the hosted tenant registry has
+     * become empty.
+     */
+    purgeHost(hostCtx: HostRouteContext, input: HostedTenantLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Disables one hosted tenant through the host registry after its descendants
+     * have already been disabled/purged.
+     */
+    disableTenant(hostCtx: HostRouteContext, input: HostedTenantLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Purges one already-disabled hosted tenant through the host registry.
+     */
+    purgeTenant(hostCtx: HostRouteContext, input: HostedTenantLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
     /**
      * Creates an employee or professional entry under an existing organization tenant.
      */
@@ -147,6 +204,31 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
      * Searches employees/professionals under the selected organization tenant.
      */
     searchOrganizationEmployees(ctx: RouteContext, input: OrganizationEmployeeSearchInput): Promise<SubmitAndPollResult>;
+    /**
+     * Searches organization-owned license seats through the canonical
+     * `License/_search` route.
+     */
+    searchOrganizationLicenses(ctx: RouteContext, input: LicenseListRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    /**
+     * Lists organization-owned license seats using the same `License/_search`
+     * route with optional filters.
+     */
+    listOrganizationLicenses(ctx: RouteContext, input?: LicenseListRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    searchOrganizationLicenseOffers(ctx: RouteContext, input: LicenseOfferRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    listOrganizationLicenseOffers(ctx: RouteContext, input?: LicenseOfferRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    searchOrganizationLicenseOrders(ctx: RouteContext, input: LicenseOrderRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    listOrganizationLicenseOrders(ctx: RouteContext, input?: LicenseOrderRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    /**
+     * Confirms an already paid organization-side license order so additional
+     * seats become usable once GW CORE exposes the public converged route.
+     *
+     * Current runtime note:
+     * - search/list for organization license offers and orders already works
+     * - the public/write post-payment seat activation route is not wired yet
+     * - this method therefore fails explicitly instead of guessing a transport
+     *   contract that is not stable in GW CORE
+     */
+    confirmOrganizationLicenseOrder(ctx: RouteContext, input: OrganizationLicenseOrderConfirmInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
     /**
      * Starts the onboarding flow for an individual-oriented tenant or index.
      */
@@ -178,19 +260,31 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
      */
     purgeIndividual(ctx: RouteContext, input: IndividualOrganizationLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
     /**
-     * Placeholder for a future GW CORE member/caregiver lifecycle contract.
-     *
-     * Current GW CORE does not yet expose a stable lifecycle route for
-     * `RelatedPerson` / individual-member disable.
+     * Soft-disables a `RelatedPerson` membership/contact using the current
+     * public batch-update path and `RelatedPerson.active = false`.
+     */
+    disableIndividualMember(ctx: RouteContext, input: IndividualMemberLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    /**
+     * Searches individual/family-side license seats through the canonical
+     * `License/_search` route.
+     */
+    searchIndividualLicenses(ctx: RouteContext, input: LicenseListRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    /**
+     * Lists individual/family-side license seats using the same search route
+     * with optional filters.
      */
-    disableIndividualMember(_ctx: RouteContext, _input: IndividualMemberLifecycleInput, _pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    listIndividualLicenses(ctx: RouteContext, input?: LicenseListRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    searchIndividualLicenseOffers(ctx: RouteContext, input: LicenseOfferRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    listIndividualLicenseOffers(ctx: RouteContext, input?: LicenseOfferRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    searchIndividualLicenseOrders(ctx: RouteContext, input: LicenseOrderRuntimeSearchInput): Promise<SubmitAndPollResult>;
+    listIndividualLicenseOrders(ctx: RouteContext, input?: LicenseOrderRuntimeSearchInput): Promise<SubmitAndPollResult>;
     /**
      * Placeholder for a future GW CORE member/caregiver lifecycle contract.
      *
      * Current GW CORE does not yet expose a stable lifecycle route for
      * `RelatedPerson` / individual-member purge.
      */
-    purgeIndividualMember(_ctx: RouteContext, _input: IndividualMemberLifecycleInput, _pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
+    purgeIndividualMember(ctx: RouteContext, input: IndividualMemberLifecycleInput, pollOptions?: PollOptions): Promise<SubmitAndPollResult>;
     /**
      * Creates and submits a consent-oriented access grant for a professional actor.
      */
@@ -217,6 +311,11 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
      * @param input Communication payload plus route/format options.
      */
     ingestCommunicationAndUpdateIndex(ctx: RouteContext, input: CommunicationIngestionInput): Promise<SubmitAndPollResult>;
+    /**
+     * Searches communication channel records by subject and participant
+     * identifiers through `Communication/_search`.
+     */
+    searchCommunicationParticipants(ctx: RouteContext, input: CommunicationParticipantRuntimeSearchInput): Promise<SubmitAndPollResult>;
     /**
      * Alias for `ingestCommunicationAndUpdateIndex(...)`.
      *
@@ -241,6 +340,10 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
      * @param input Subject-scoped search parameters.
      */
     searchLatestIps(ctx: RouteContext, input: Omit<ClinicalBundleSearchInput, 'includedTypes'>): Promise<SubmitAndPollResult>;
+    /**
+     * Preferred runtime alias for latest-IPS retrieval used by shared facades.
+     */
+    getLatestIps(ctx: RouteContext, input: Omit<ClinicalBundleSearchInput, 'includedTypes'>): Promise<SubmitAndPollResult>;
     /**
      * Searches a communication/document thread using `thid` and returns the
      * indexed communication/document projections.
@@ -258,16 +361,35 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
     private parseResponseBody;
     private requireRouteContext;
     private routeCtxFromInput;
+    /**
+     * Reuses the shared bundle business contract while keeping attachment
+     * transport fields at the DIDComm/plaintext message layer expected by GW.
+     */
+    private wrapBundleAsGatewayTransactionMessage;
     private hostRegistryPath;
     private requireHostRouteContext;
+    hostRegistryOrganizationTransactionPath(ctx?: HostRouteContext): string;
+    hostRegistryOrganizationTransactionPollPath(ctx?: HostRouteContext): string;
     hostRegistryOrganizationActivatePath(ctx?: HostRouteContext): string;
     hostRegistryOrganizationActivatePollPath(ctx?: HostRouteContext): string;
+    hostRegistryOrganizationDisablePath(ctx?: HostRouteContext): string;
+    hostRegistryOrganizationDisablePollPath(ctx?: HostRouteContext): string;
+    hostRegistryOrganizationPurgePath(ctx?: HostRouteContext): string;
+    hostRegistryOrganizationPurgePollPath(ctx?: HostRouteContext): string;
     hostRegistryOrderBatchPath(ctx?: HostRouteContext): string;
     hostRegistryOrderPollPath(ctx?: HostRouteContext): string;
     employeeBatchPath(ctx?: RouteContext): string;
     employeePollPath(ctx?: RouteContext): string;
     employeeSearchPath(ctx?: RouteContext): string;
     employeeSearchPollPath(ctx?: RouteContext): string;
+    organizationLicenseSearchPath(ctx?: RouteContext): string;
+    organizationLicenseSearchPollPath(ctx?: RouteContext): string;
+    organizationDidBindingPath(ctx?: RouteContext): string;
+    organizationDidBindingPollPath(ctx?: RouteContext): string;
+    organizationLicenseOfferSearchPath(ctx?: RouteContext): string;
+    organizationLicenseOfferSearchPollPath(ctx?: RouteContext): string;
+    organizationLicenseOrderSearchPath(ctx?: RouteContext): string;
+    organizationLicenseOrderSearchPollPath(ctx?: RouteContext): string;
     employeePurgePath(ctx?: RouteContext): string;
     employeePurgePollPath(ctx?: RouteContext): string;
     individualFamilyOrganizationBatchPath(ctx?: RouteContext): string;
@@ -278,21 +400,30 @@ export declare class HttpRuntimeClient implements NodeRuntimeClient {
     individualFamilyOrganizationDisablePollPath(ctx?: RouteContext): string;
     individualFamilyOrganizationPurgePath(ctx?: RouteContext): string;
     individualFamilyOrganizationPurgePollPath(ctx?: RouteContext): string;
+    individualLicenseSearchPath(ctx?: RouteContext): string;
+    individualLicenseSearchPollPath(ctx?: RouteContext): string;
+    individualLicenseOfferSearchPath(ctx?: RouteContext): string;
+    individualLicenseOfferSearchPollPath(ctx?: RouteContext): string;
+    individualLicenseOrderSearchPath(ctx?: RouteContext): string;
+    individualLicenseOrderSearchPollPath(ctx?: RouteContext): string;
     individualFamilyOrderBatchPath(ctx?: RouteContext): string;
     individualFamilyOrderPollPath(ctx?: RouteContext): string;
     individualRelatedPersonBatchPath(ctx?: RouteContext): string;
     individualRelatedPersonPollPath(ctx?: RouteContext): string;
+    individualRelatedPersonPurgePath(ctx?: RouteContext): string;
+    individualRelatedPersonPurgePollPath(ctx?: RouteContext): string;
     individualConsentR4BatchPath(ctx: RouteContext): string;
     individualConsentR4PollPath(ctx: RouteContext): string;
     individualCommunicationBatchPath(ctx: RouteContext, format: 'org.hl7.fhir.api' | 'org.hl7.fhir.r4'): string;
     individualCommunicationPollPath(ctx: RouteContext, format: 'org.hl7.fhir.api' | 'org.hl7.fhir.r4'): string;
+    individualCommunicationSearchPath(ctx: RouteContext): string;
+    individualCommunicationSearchPollPath(ctx: RouteContext): string;
     individualBundleSearchPath(ctx: RouteContext): string;
     individualBundleSearchPollPath(ctx: RouteContext): string;
     identityTokenExchangePath(ctx: RouteContext): string;
     identityTokenExchangePollPath(ctx: RouteContext): string;
     identityOpenIdSmartTokenPath(ctx: RouteContext): string;
     identityOpenIdSmartTokenPollPath(ctx: RouteContext): string;
-    private extractOfferId;
     private appendHttpTrace;
     private parseTraceBody;
     private parseTraceRawText;